CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-23788

Server-side request forgery vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to send an arbitrary HTTP request (GET) from the affected product.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 45.5%

CVSS Severity

CVSS v3 Score 8.1

References

https://jp.sharp/support/taiyo/info/JVNVU94591337_en.pdf
https://jp.sharp/support/taiyo/info/JVNVU94591337_jp.pdf
https://jvn.jp/en/vu/JVNVU94591337/
https://jp.sharp/support/taiyo/info/JVNVU94591337_en.pdf
https://jp.sharp/support/taiyo/info/JVNVU94591337_jp.pdf
https://jvn.jp/en/vu/JVNVU94591337/

Products affected by CVE-2024-23788

Sharp » Jh-Rv11 » Version: N/A

cpe:2.3:h:sharp:jh-rv11:-
Sharp » Jh-Rvb1 » Version: N/A

cpe:2.3:h:sharp:jh-rvb1:-
Sharp » Jh-Rv11 Firmware » Version: N/A

cpe:2.3:o:sharp:jh-rv11_firmware:-
Sharp » Jh-Rv11 Firmware » Version: b0.1.9.1

cpe:2.3:o:sharp:jh-rv11_firmware:b0.1.9.1
Sharp » Jh-Rvb1 Firmware » Version: N/A

cpe:2.3:o:sharp:jh-rvb1_firmware:-
Sharp » Jh-Rvb1 Firmware » Version: b0.1.9.1

cpe:2.3:o:sharp:jh-rvb1_firmware:b0.1.9.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-23788

Products

Pricing

Contact Us